Menu

Privacy Notice

Effective Date: 30th November 2025

1. Introduction

This Privacy Notice explains how FacEProtect Limited ("we," "us," or "our"), a company that provides cutting-edge Facial Recognition Technology (FRT) solutions and data protection compliance services, collects, uses, and protects personal data obtained through our corporate website, faceprotect.co.uk (the "Website").

We act as a Data Controller for the personal data collected directly through this Website.

IMPORTANT NOTE: This notice only covers data collected via this Website. It does not cover the processing of biometric data, which is handled via our customer contracts and specific deployment documentation (e.g., DPIAs and bespoke privacy notices for end-users of our FRT solutions).

2. Data We Collect Via the Website

The Website is primarily for informational purposes. We collect data based on your interaction with our contact forms and support channels:

Category of Data Specific Data Elements Purpose of Collection Legal Basis (UK GDPR)
Enquiry Data Name, Job Title, Organisation, Email Address, Phone Number, Enquiry Details. To respond to general enquiries (press, prospective clients) about our products and services. Legitimate Interests (to grow and manage our business).
Support Data Name, Organisation, Email Address, Customer ID (if provided), details of the technical or support issue. To provide technical support and service management for existing customers. Contractual Necessity (to fulfil support obligations under a service contract).
Usage Data IP address, browser type, operating system, pages viewed, time spent on site. To monitor website performance, security, and improve user experience. Legitimate Interests (network security and site optimization).

3. How We Use Your Data

We use the data collected on this Website solely to achieve the purposes listed above, including:

  • Responding to specific press inquiries and managing media relations.
  • Engaging with prospective customers interested in FRT deployment and compliance services.
  • Diagnosing and resolving technical issues reported by existing customers.
  • Maintaining the security and functionality of the Website.

4. Disclosure and Sharing of Your Data

We do not sell your personal data. We may share your data with third parties only in the following limited circumstances:

  1. Service Providers: We use third-party service providers (e.g., secure cloud hosting, email service providers, CRM platforms) who act as Data Processors. They only process data on our instructions to operate the Website and manage communications.
  2. Legal Requirements: If required by law, court order, or governmental authority to disclose your data.
  3. Business Transfer: In connection with a merger, acquisition, or sale of assets, where data is transferred as part of the business.

5. Data Security

We are committed to protecting the integrity and confidentiality of your personal data. We implement technical and organisational measures, including:

  • Encryption: Data transmitted via the Website is protected using SSL/TLS encryption.
  • Access Controls: Strict controls limit access to Enquiry and Support Data only to authorised personnel.
  • Data Minimisation: We do not collect or store biometric data from Website visitors.

6. International Data Transfers

Your data will not be transferred to and stored in jurisdictions outside the UK and the European Economic Area (EEA).

7. Your Data Protection Rights

Under UK GDPR, you have the following rights regarding the personal data we hold about you:

  1. Right of Access: You can request a copy of the data we hold.
  2. Right to Rectification: You can ask us to correct inaccurate or incomplete data.
  3. Right to Erasure (Right to be Forgotten): You can ask us to delete your data where there is no compelling reason for us to continue processing it.
  4. Right to Restrict Processing: You can request that we limit the way we use your data.
  5. Right to Object: You have the right to object to processing based on legitimate interests.
  6. Right to Data Portability: You can request your data be provided in a structured, commonly used, machine-readable format.

To exercise any of these rights, please contact our Data Protection Officer using the details below.

8. Data Retention

We only retain your personal data for as long as necessary to fulfil the purposes for which it was collected:

  • Enquiry Data: Kept for a maximum of 12 months after the last communication, unless it results in a formal customer relationship.
  • Support Data: Retained for the duration of the customer contract plus a reasonable period thereafter for audit and legal purposes.

9. Contact Information

If you have any questions about this Privacy Notice or wish to exercise your rights, please contact our Data Protection Officer:

Data Controller: FacEProtect Limited
Address: c/o WSM, Connect House, 133–137 Alexandra Road, Wimbledon, London, UK, SW19 7JY
Email for Data Inquiries: DPO@faceprotect.co.uk

You also have the right to lodge a complaint with the supervisory authority, the Information Commissioner’s Office (ICO), in the UK.